and run it. Click on 'I Agree' button if you agree with it. Click on 'Fix' (it will automatically fix anything it finds for you) and OK. If it asks if you want to delete a certain random file, choose No and post that filename here. Let it finish the scan and then hit Next and Exit.
Download and install Spybot S&D
. Run Spybot and click on the 'Search for Updates' button. Install any updates that are available. Next click on the 'Check for Problems' button. Let it run the scan. If it finds something, check all those in RED and hit the Fix Selected Problems
button. Exit Spybot. If you keep getting the DSO Exploit entries, even after you updated Windows and fixed them, then download the Spybot DSO Exploit Fix
and install it over the current Spybot installation.
Please download Ad-aware SE
and install it if you don't have it already. Make sure it's the newest version and check for any updates before running it. Also go here
to get the plug-in for fixing VX2 variants. To run this tool, go into Ad-aware->Add-ons and select VX2 Cleaner. Then click Run Tool and OK to start it. If it's clean, it will say Status System Clean. Otherwise, you will have to click on the Clean button to remove the VX2 infection. Also make sure to customize
the settings in Ad-aware for better scan results. Run the scan and fix everything that it finds.
Please download HijackThis
- this program will help us determine if there are any spyware/malware on your computer. Create a folder at C:\HJT and move HijackThis.exe there. Double click on the program to run it.
1. If it gives you an intro screen, just choose 'Do a system scan and save a logfile'.
2. If you don't get the intro screen, just hit Scan and then click on Save log.
3. Get HijackThis Analyzer
and save it to the same folder as the hijackthis.log file. Run HijackThis Analyzer and type in y
if you agree. The result.txt
file will open up in Notepad. Copy the whole result.txt log and post it in the HijackThis forum.
We do not need the original hijackthis.log (unless we ask for it). Do not fix anything in HijackThis since they may be harmless.